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(57) Abstract: An online method that prevents fraud due to pi- 
rated payment card numbers by utilizing SSL security techniques 
between a buyer (la), a seller (2a), and a trusted payment card 
host (3) who has the buyers' payment card information and cor- 
responding secret keys. The buyer (la) initiates the transaction 
by utilizing a host (3) providing service to the seller's web server 
(2a). The buyer (la) sends an encrypted order to the seller (2a) 7 
who assigns an order ID and sends an encrypted response to the 
buyer ( la) with the assigned order ID. The buyer (la) then noti- 
fies the host (3) of this order, and authorizes the payment using 
secret keys. The seller (2a) sends payment approval request to the 
host (3). The host (3) matches up the order ID, retrieves the secret 
keys and hashes to obtain the corresponding payment card num- 
ber. The host then requests payment authorization and notifies the 
seller (2a) of the card issuers response. 
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process and method for online transactions that is relatively 
secure, and most importantly, it alleviates online consumer fraud 
that originates from pirated credit card numbers, which often occurred 
from online or offline sources. 

BACKGROUND - DESCRIPTION OF PRIOR ART 

With advent of electronic commerce, or ecommerce, the internet 
has brought the world together as a global trading market. Consumer 
at any corner of the world can buy products or services from any 
merchant at other parts of the world, as long as the consumer can 
have access to the internet and the merchant has set up a web store 
front. The volume of this electronic online trading is apparently 
huge and its growth can be explosive. What usually takes place is 
that, when a consumer shop at a merchant's online store, after 
placing an order online, the consumer will also need to enter payment 
information online at the that time, which is normally done by filling 
out a payment form that requires payment card number and certain payment 
card supporting information. 

When merchant received the order from the consumer with payment 
information, the merchant will then try to fulfill the order and send 
in payment request to a private payment card clearing network through a 
payment gateway [1). Once the merchant received the payment request 
response, that is payment authorization, from the payment gateway, the 
merchant will then deliver what the consumer ordered, and send in the 
request for payment capture. 

This online transaction starts when the consumer entered the order 
with payment information, and completed when the merchant fulfilled the 
order and captured payment. A potential fraudulent online transaction 
occurs when the credit card, or payment card, that used to pay for the 
orders online was pirated, often from many sources. Because of the wide 
spread, global reach that internet enables, the potential damages to the 
online trading due to pirated payment cards, compared to damages it can 
cause to offline trading, or the traditional, old style commerce, can be 
many times over. 



BNSDOCID: <WO 0157770A1_L> 



WO 01/57770 



PCT/US01/03628 



JL ^ th ° nl ' ne '"»"<=«<•» .W» were propped or 

oped, with vary lng degreea of securi£y ^^^^ ^ sinsi: ^ 

re g „ire„„t has not „.t with w d sophisticated technologic! 

not met with wide spread deployment Tt-c 
»lde spread deployment should „ ot b . r , g ardL ,7L ? 
eco„,erce population with respect to J? " l0 " «o»« 

traction security »athe r ! k MP °""« ° f ^"tropic 

transaction models that I L7 . ^ "'"^ 

for co»s„ers to use , lthoU dh th "" ChantS " " d 

— . - -i,::::;::; :::r r° at 

Two examples of these parent devices was announced by VISA and 
American Express. Private Payment f 121 fr™. » 

sh op using . disposable credi n ;:::t;T; ress iet ™ rs 

numbers, th , t ,„ „„,, . numbers , instead of real credit card 

seeks to „ p\ C a hp T ^ ^""oationUa, 

-ver enter, ^^11^^^ ^ 

pj-ace an order online bi^ 

approaches require subst-^n =, i „ 6- But these 

~, b e; n d paZr ,: a ri;;i:.u; :rr M r pr °~ 

Processors, which uspaliy cannot t.^Z^lTZZ TZjT^ 

~~i~r ne - - — - ™ ™< 

these electronic transaction models. tho ug h peer friendly are stil, 

Moat of Z d ' eSPeClallV fr ° m ° nline MrCha " S W Of View 

Moat of the,, do not have an effective way of block™ t„ 

Pirated payment card online , hi , .„ . the Usa « e ° f 

when online transaction take, p ac 7 " " P ""= Ul "^ 

services fro. the »erch,„ " w^ I tes Zr ^ """^ " Et0dU " S " 
«VS, is nor^Uy not applicable ""'Nation «»*- 



_0157770A1J_> 



WO 01/57770 



PCT/US01/03628 



4 

A useful and desirable electronic transaction method or protocol should 
be user friendly, easy to deploy, with no changes to the backend processing 
protocols beyond payment gateways, and at the same time, provide a sound 
measure against consumer fraud, which often arise from pirated payment 
card numbers. 

SUMMARY 

in an electronic commerce online transaction that prevent 
consumer fraud due to pirated payment card numbers, this invention 
involving at least one trusted payment card host. Buyer selects host, 
and enters order online without sending payment card number. Seller 
assigns an order ID to the order. Buyer authorizes payment through 
the host using secret keys; seller also request payment approval 
through the host with the same orderlD. The host matches orderlD and 
recover secret keys. The host hashes with the set of secret keys 
to get payment card number. The host then send payment authorization 
request to the payment card issuer via payment network. After 
receiving the response from the issuer, the host sends issuer's 
response back to the seller. Seller fulfills the order and. send for 
payment capturing' through the host. All messages sending and passing 
over the internet are SSL channel encrypted, and all messages received 
are decrypted by recipients. 

OBJECTS AND ADVANTAGES 

The objects and advantages that this invention achieved^ are as follows: 

(1) No payment card number is used by consumers in this online 
transaction process, when the consumers enter orders online. Therefore, 
any pirated payment card, mostly from many sources, is rendered useless 
when a consumer is trying to use the pirated payment card number to order 
or shop online. 

(2) It, from objects and advantages (1), provides a way to effectively 
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changes or mutation of each set of secret keys that corresponds to each 
payment card account, without the need to change the underlined payment 
card account. 

(12) It can confirm to encryption regulations of various government 
easily, facilitates electronic commerce deployment for global reach. 

DESCRIPTION OF DRAWINGS 

Fig. 1 is a schematic of an online transaction process that takes 
place in an electronic commerce, from the viewpoint of a participating 
consumer. The steps of operation flow follows numeral sequence as in 
this figure, from 4 to 16. 

LIST OF REFERENCE OF NUMERALS 

la consumer participant, or, buyer participant, an ecommerce device, 

it can be a PC computer, a handheld device, or a TV set that 
executes ecommerce application software 

lb the consumer, or buyer 

2a merchant participant, or, seller participant, an ecommerce 

application server 
2b the merchant, or seller 

3 the trusted payment card host, or the host 

4 consumer selects host and sends orders to the merchant 
participant online without including payment card number 

5a merchant participant sends order accepted response to the 

consumer participant with orderlD 
5b merchant participant sends order-not-available response 

to the consumer participant 

6a consumer participant sends payment authorization request 



BNSDOCID: <WO 015777QA1_I_> 



WO 01/57770 



PCT/US01/03628 



7 



6b 
6c 



to tha host „ lth oraerID; consu ^ t patti optlonally 
-die. a tha desi g „ ati o„ s ana tha „ gulre „ ent of 
of .nthortz.tions and authantications. if „ ece3sary . ' 
constat pa rticlpant 5aads t>rdet . cancelad 
merchant participant 

consumer participant sends Payment-authorization-requested 
message to the merchant participant 

merchant participant sends payment approval revest to the 
host wath orderlD 

authorization foIn(s , that „ atch exa<;t sa>e 

parent 3 ate„, ys . a „ d thtdu , h paym(!nc 

tha host sends Pay»a„t- a pprov a , -ra.uast-rai.ctad 
merchant participant 

th. host waives tr^s.ction-.uthorii.tion-ra^est response bac* 
«*- Paya.ant c a rd issue, vi a p ay „ ent gateuay „ vJa ^ 
clearing network Payment 

Z:ZT S ™"~ ~a t. t „e „aroh a „t 

10c tha host sand. P.ynant-authorization-raouaat raapons. to tha 
consumer participant 

U ^tenant participant sands f ullillBe „t ra q uest to tha f um llmant 



12 



fulfillment center sends fulfillment-request response back to 
tne merchant participant 



.* ZlTl PartlCiP " 1 P^-« oapturin, „ guest to t „ e hpst 

»erch.„ t p a rticip a „t sands ordar- f u 1£ i llad rasponae „ e 
tne consumer participant 



WO 01/57770 



PCT/US01/03628 



8 



14b 



14a 



the host sends transaction clearing request through payment 
gateway, or, through payment clearing network 

the host sends payment-capturing-request-ref used response back to 
the merchant participant 



15 



the host receives transaction-clearing-request response back 
from payment card issuer, via payment gateway, or, via payment 
clearing network 



16 



the host sends payment-capturing-request response to the merchant 
participant 



DESCRIPTION AND OPERATION OF INVENTION - MAIN EMBODIMENT 

This invention (Fig.l) provides a secure, user friendly online transaction 
model that alleviates consumer fraud which arises from pirated payment cards, 
and facilitates electronic commerce among unrestricted audience of 
participants, over an open, unsecured, wide area communication network, such, 
as internet. From a localized viewpoint, that is from a single participating 
consumer's point of view, this electronic commerce system has a trusted 
payment card host (Host 3), a computer server at a participating merchant's 
web site (Merchant Server 2a), and a computer client at the consumer's reach 
(Consumer Browser la) . 

A Host 3, the trusted payment card host, is a secure computer server 
or servers, that hosts a repository of consumers* payment cards data. 
Consumers lb register their payment cards at a Host, or at various Hosts 
of their choice, and set up a pair or a set of keys correspond to each 
payment card with the Host. For security reason, the keys are not stored 
in pair, but in random orders. Only the unique, correct key pair can hash 
out their corresponding payment card number. Each key pair, one key being 
authorization code, the other being authentication code are established 
by the payment card owner consumer with the Host. They can be changed by 
the owner consumer lb at the request of the Host, or by the owner consumer 
self. They also can be changed at a preset periodical time, or, when deemed 
necessary. 
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which came with original order entry, those ordered items that are 
available, and the money amount. This order accepted response message 5a 
is constructed and delivered to the consumer via internet, SSL channel 
encrypted. Consumer Browser receives this response and pop up a window 
with a payment form to be filled out by the consumer lb. The window can be 
another browser window. The fields in the form includes orderlD 
(automatically filled in already), ordered items list (already filled 
in), money amount (already filled in), Host of choice (already filled in, 
it's originally specified by consumer), consumer's payment authorization 
code (to be filled in), consumer authentication code (to be filled in), 
and other optional fields, with send and cancel buttons. Click on cancel 
button will abort this transaction, and an order-canceled response 6b 
message, which includes the orderlD, will be generated and sent back to 
the Merchant Server that terminates this transaction. Else, after consumer 
filled in the blanks of the form, in accordance with the Host selected, 
then click on the send button, a payment authorization request 6a is 
generated and sent to the designated Host, and a payment-authorization- 
request-sent message 6c, which includes the orderlD, is also generated and 
sent to the Merchant Server. 

Upon receiving the payment-authorization-request-sent message, the 
Merchant Server will then construct a corresponding payment approval 
request 7 for this orderlD, with retrieved relevant data from database 
of pending orders, and send it off to the selected Host. 

The payment approval request 7 includes the orderlD, money 
amount, consumer authentication code if it came with the order, and 
other supporting information, that are required in order to complete 
the processing of payment approval request. The supporting information 
includes merchant's financial institution, merchant ID, merchant address, 
etc., those data required by payment clearing network, and/or participating 
financial institutions to ensure that the merchant can and is legitimate 
to receive payment of the transaction. This payment approval request message 
is constructed and delivered to the Host 3 of choice, which is specified in 
the consumer's order entry, via internet, SSL channel encrypted. 

Upon receiving Merchant Server's payment approval request, the designated 
Host 3, who holds the payment card data that the consumer will use to pay for 
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transactionID temporarily in Host's database, awaiting payment capturing 
request from the Merchant Server, The length of time before this 
transactionID record expires is set by the Host, it's usually more 
accommodating. The Host will then generate a payment-approval- request 
response message 10a, which includes the transactionID and send it back to 
the Merchant Server. The Host will also generate a payment-authorization- 
request 10c response message with the transactionID, and send it back to the 
consumer via email (since Consumer Browser may not always be up to receive 
Host's response). 

After receiving the payment-approval-request response message 10a from 
the Host 3, the Merchant Server will store the transactionID in the 
corresponding order ID record, in the Merchant Server's database. A 
fulfillment request 11, which includes the orderlD and those ordered items 
to be fulfilled, is generated and sent to the merchant's fulfillment 
department. The fulfillment department's computer server, upon completion 
of order fulfillment, will generate a fulf illmentID 12, which may 
include the orderlD and other delivery information, and send it back to 
the Merchant Server. 

" When the Merchant Server .received the fulf illmentID 12, this fulf illmentID 
will also be stored in the corresponding orderlD record, in the Merchant 
Server's database. An order-fulfilled response message 13b is generated, 
which includes orderlD and the fulfilled order items, and is sent to the 
consumer, via email. And a payment capturing request 13a will be generated, 
which includes the transactionID and money amount, and is sent back to the 
Host of choice 3. Upon receiving the payment capturing request 13a, the Host 
will verify the money amount against data stored under the transactionID. 
If the money amount does not match, a payment-capturing-request-refused 14b 
message will be generated, together with the original payment capturing 
request 13a, and sent back to the Merchant Server. The Merchant Server can 
re-transmit the payment capturing request, after receiving the payment- 
capturing-request-refused message, and at the same time, send an alert 
with the record of this orderlD to the system administrator for possible 
offline resolution if necessary. 

If the money amount and transactionID are validated by the Host, before 
the record expires, the Host 3 will generate a transaction clearing request 
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CONCLUSION, RAMIFICATIONS AND SCOPE OF INVENTION 
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the buyer when he or she shops online- In case that a payment card number 
has been pirated, it is rendered useless when going online within this 
transaction model. The fact that payment card number does not travel 
online will prevent eavesdropping of the payment card numbers over the 
internet . 

Another benefit to consumers in this online transaction process is that 
merchant do not handle consumer's payment card number, thus it alleviates 
the payment card abuse by fraudulent merchants. 

An additional benefit is that this transaction process can be deployed 
over any communication protocols or communication networks. It has a 
further benefit that this transaction model is also complementary to the 
existing payment card network systems or payment gateways, that handle 
authorization and settlement of payment card payments. 

While my above description contains many specificities, these should not 
be construed as limitations on the scope of this invention, but rather as 
an exemplification of one preferred embodiment thereof. Many other 
variations are possible. 

For example that in a transaction involving ordered items- from multiple 
sellers, paid by payment cards hosted at multiple trusted payment card 
hosts. The same transaction process and method can equally apply, and 
messages to and from the buyer are encrypted and can be queued. 

Another example which in order to provide buyers a gradual transition 
experience from current practice that buyers must enter payment card 
number online in order to shop, a payment card number field can also be 
included in the pop up payment form, in addition to secret keys fields, 
which is to be completed by the buyer, before it is sent off to the trusted 
host for payment authorization. In such a case, the host need not to hash 
with the secret keys to obtain the payment card number, it is readily 
available in the payment form to be retrieved. 

Additionally, the secret keys do not have to be limited to dual pairs. 
For example, when a payment card account pay out must be approved by more 
than one party, then, each approval authority would need to have a set of 
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TITLE: PROCESS AND METHODS FOR SECURE ONLINE TRANSACTIONS 
WITH CALCULATED RISK AND PROVISION AGAINST FRAUD 



CLAIMS 

I claim: 

1 . In an electronic commerce online transaction that prevent consumer 
fraud arises from pirated payment card numbers/ involving at least one 
participating host, as a trusted payment card host, serving between 
buyers, sellers and payment clearing processors, a process and method 
comprising the following steps: 

buyer selects a participating host, if the said host is set up 
as a default host, then, the selection is automatic- 
buyer participant sending order for goods and services online 
to seller participant, without sending payment card numbers along 
with said order; 

seller participant confirms the said order with the said buyer 
participant; 

buyer participant authorizes the payment of the said order 
by sending secret keys to the said participating host; (buyer will 
optionally, if necessary, indicate the designations and the 
requirement of multiplicity of authorizations and authentications) ; 

seller participant requests for payment approval from buyer 
participant's payment card issuer, through participating host; 

the seller participant fulfills the said order, and requests 
payment capturing through the said participating host. 

2. A process and method as recited in claim 1, wherein.no default 
host is set up, the selection of participating host further comprising 
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" t ::r l :t y r P :;:r c :r i r p *~ ™= ■ »« „ 

selects the ssrd pi T bUy " ""»«P«t 

prtxcxpatx., host fto „ the „ id list of ^ 

™ P „ t £urth „ lncluai „; z::::zzzx:::r 

3- A process and method as recited in claim 1 wK • 
sending order for go ods and services on I L£ r T ^ 
of sending, alongside the said ord.r ■ T c ™P"sing the step 

" ° rd6r ' lnfo — tion of the said selected 

3.1. A process and method as recited in C ,., B , u 

Participant sending order and select * * ^ 

the steps: ^ h ° St ° nline fu ^her comprising 

the buyer participant encrypting the said „ ^ 
tne said information or selected host. t09ether 

the seller participant decrypts the said order and selected host. 
«• A process and method as recited („ , 

confi™ the „ ld order e<) Z „ " " h " eln " U " P»ti=ipa„t 

' b " y " P««='P«nt further co^risio, 

s ai d S «::r MC "" Pant 9M " at " " "*™ «-* Identifies the 



ParUcLlrr 10 ^" " 1 " d « eM " t P-l—t for* to the buye r 

:::: ; SP r:r ion - " hetein the ™ «*- ~: 

4-1. A process and method as recited in „ ■ „ 

including steps: Participant further 
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the seller participant encrypts the payment form; 
the buyer participant decrypts the payment form. 

5. A process and method as recited in claim 1, wherein buyer participant 
authorizes payment for the said orders further comprising additional 
steps : 

buyer completes the said payment form by entering secret keys into 
pertinent spaces, the said secret keys include at least one key for 
authentication, and another key for authorization; 

buyer participant sends the said completed payment authorization 
form to the said participating host; 

buyer participant notify the seller participant that payment 
authorization form of said order ID is completed and sent. 

5.1. A process and method as recited in claim 5, wherein the buyer 
participant sending the completed payment form to the host, further 
includes the steps that buyer participant encrypts the completed 
payment form and the participating host decrypts the said payment 
form. 

5.2. A process and method as recited in claim 5, wherein the buyer 
participant notifies the seller participant further including the 
steps of buyer participant encrypting the message of notification, . 
and the seller participant decrypting the said message. 

6. A process and method as recited in claim 1, wherein seller participant 
requests for payment approval through participating host further 
including the steps: 

seller participant encrypts the said orderlD together with said 
payment request, and sent to the participating host; 

the participating host decrypts the request. 
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7. A process and method as recited in h • r 

following additional steps: ' ^"^ Rising the 

the participating host searches for all t he „ 

form(s) that matches the exact sa J V ^ auth - iz ^ion 

t-iie exact same orderlD as th^f- ^-p +-u 
approval request; ITh is ,p plies to „.„, . " ° f the s » ia P»««>t 

m the said payment form(s) of exact 

exact same said orderlD; 

~ p :r::~: host hash - ith th ° ** id — - » — - 

Payment g , te „ ay and ne ^"' "" h '""""^ '"option. through 
8. A process and method as recited in ,i ■ . 

following additional steps: ' th * 

the Participating host receives payment approval reguest response, 
the participating host notifies the said «, , 

- s, ia _ approval tesponse , ^z:zTzr:2T:T 

payment card number. unout the 

8.1 A process and method as recited in claim 8, wherein the 
participating host notifies the «n 

the steps: ^ further comprising 

r;i — rr - r ~ 

encrypted approval response packet to the said se H ^ 

Tine said seller participant; 

the seller participant decrvot^ tho o ^ 
and secure it in database. rSSPOnSe P * C * et 
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9. A process and method as recited in claim 1, wherein seller participant 
requests payment capturing through the participating host further 
including the following steps: 

the seller participant encrypts the payment capturing request packet, 
which, at least, includes the said orderlD, payment approval code, and 
money amount, and send the resulting encrypted packet to the 
participating host; 

the participating host decrypts the said payment capturing request 
packet; 

the participating host verifies the payment capturing request; 

the participating host send for payment capturing through payment 
network, with the payment card number that corresponding to the said 
orderlD. 
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